Dear Peer....
I tried the command line from you. But the output is
empty...
I grep nothing...
I will repeat this threat from you if the problem
comes again.
Btw, how can you know that what I send to you was only
ssh?
Please help me, I am stucked...
--- Peer Stefan
Hi Prabu,
Sorry to say so, but this trace shows nothing more than a connection-trace of your ssh-session (DPT=22 ...). Don't tail /var/log/messages, it's quite big and gets filled really fast. Do a "cat /var/log/messages|grep DTP=80|grep -v DST=192.168.23.10" in order to get all the outgoing http-stuff.
so long, Stefan
btw. I'm called Stefan - it's a bit queer here in Austria, we always put the last name in front ;-)
From: Prabu Subroto [mailto:prabu_subroto@yahoo.com] Dear my friend, Peer...
Today morning, it happened again. I follow your advice and this is the 60 lines of my "/var/log/messages" file: " proxy:/var/log # tail -n 60 messages Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4343 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4344 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4345 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4346 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4347 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4348 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4349 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4350 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4351 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4352 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF7) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4353 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4354 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1B04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4355 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=16192 RES=0x00 ACK URGP=0 OPT (0101080A00097D1C04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4356 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=18824 RES=0x00 ACK URGP=0 OPT (0101080A00097D1C04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4357 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=18824 RES=0x00 ACK URGP=0 OPT (0101080A00097D1C04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4358 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=18824 RES=0x00 ACK URGP=0 OPT (0101080A00097D1C04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4359 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=21720 RES=0x00 ACK URGP=0 OPT (0101080A00097D1C04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4360 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=24616 RES=0x00 ACK URGP=0 OPT (0101080A00097D1D04A2BFF8) Feb 27 14:04:49 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00 SRC=192.168.23.237 DST=192.168.23.10 LEN=52 TOS=0x10 PREC=0x00 TTL=64 ID=4361 DF PROTO=TCP SPT=1132 DPT=22 WINDOW=27512 RES=0x00 ACK URGP=0 OPT (0101080A00097D1D04A2BFF9) Feb 27 14:04:51 proxy kernel: SuSE-FW-ACCEPT-ALL-INTERNAL IN=eth0 OUT= MAC=00:50:bf:77:77:d5:00:50:bf:77:80:49:08:00
=== message truncated === __________________________________________________ Do you Yahoo!? Yahoo! Tax Center - forms, calculators, tips, more http://taxes.yahoo.com/